Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Register now to learn Fabric in free live sessions led by the best Microsoft experts. From Apr 16 to May 9, in English and Spanish.

Reply
Anonymous
Not applicable

[Python] Get AccessToken POST Request + Multi-factor Auth

‎12-13-2018 09:03 AM

Hello,

 

I'm trying to get an AccessToken from https://login.microsoftonline.com/common/oauth2/token but I have two problems

 

  • My user for security reason have MFA enabled, and cannot be disabled.
  • The code I have found doesn't work only using clientID and ClientSecret (Source)

The code below generates an access code, but the POST request retrieves 401 status code.

 

I can disable MFA and enter User and Password and would generate a valid access token, but that generates a massive security problem, besides implies that I would need to have a "permanent" account that would only have access to PBI for doing refreshes - basically a flaw into the system of APIs.

 

import adal
import requests
from msrestazure.azure_active_directory import AADTokenCredentials

authority_host_uri = 'https://login.microsoftonline.com'
tenant = 'tenant'
authority_uri = authority_host_uri + '/' + tenant
resource_uri = 'https://analysis.windows.net/powerbi/api'
client_id = 'clientid'
client_secret = 'clientsecret'
context = adal.AuthenticationContext(authority_uri, api_version=None)
mgmt_token = context.acquire_token_with_client_credentials(resource_uri, client_id, client_secret)
credentials = AADTokenCredentials(mgmt_token, client_id)


headers = {'Authorization': 'Bearer ' + mgmt_token['accessToken'], 'Content-Type': 'application/json'}
url = 'https://api.powerbi.com/v1.0/myorg/groups/me/datasets/datasetid'

r= requests.post(url, headers=headers)
print(r)

 

Labels:
Message 1 of 2
2,744 Views
1 REPLY 1
Jayendran
Solution Sage
Solution Sage

‎11-16-2019 10:16 PM

Hi ,

 

You don't need to disable the MFA for your account. Instead you can overcome the issue with using SPN

https://docs.microsoft.com/en-us/power-bi/developer/embed-service-principal

 

Just upgrade your workspace to v2.

 

Issue resolved !

Message 2 of 2
2,279 Views
0

Helpful resources

Announcements
Microsoft Fabric Learn Together

Microsoft Fabric Learn Together

Covering the world! 9:00-10:30 AM Sydney, 4:00-5:30 PM CET (Paris/Berlin), 7:00-8:30 PM Mexico City

PBI_APRIL_CAROUSEL1

Power BI Monthly Update - April 2024

Check out the April 2024 Power BI update to learn about new features.

April Fabric Community Update

Fabric Community Update - April 2024

Find out what's new and trending in the Fabric Community.

View All